Diff for /admin/access-control.sdf between versions 1.3 and 1.4

version 1.3, 2008/03/19 15:10:50 version 1.4, 2008/05/15 19:35:13
Line 1 Line 1
 # $OpenLDAP: pkg/openldap-guide/admin/access-control.sdf,v 1.2 2008/03/15 19:22:23 ghenry Exp $  # $OpenLDAP: pkg/openldap-guide/admin/access-control.sdf,v 1.3 2008/03/19 15:10:50 ghenry Exp $
 # Copyright 1999-2008 The OpenLDAP Foundation, All Rights Reserved.  # Copyright 1999-2008 The OpenLDAP Foundation, All Rights Reserved.
 # COPYING RESTRICTIONS APPLY, see COPYRIGHT.  # COPYING RESTRICTIONS APPLY, see COPYRIGHT.
   
Line 137  attribute name and also using a value se Line 137  attribute name and also using a value se
 There are two special {{pseudo}} attributes {{EX:entry}} and  There are two special {{pseudo}} attributes {{EX:entry}} and
 {{EX:children}}.  To read (and hence return) a target entry, the  {{EX:children}}.  To read (and hence return) a target entry, the
 subject must have {{EX:read}} access to the target's {{entry}}  subject must have {{EX:read}} access to the target's {{entry}}
 attribute.  To add or delete an entry, the subject must have  attribute.  To perform a search, the subject must have
   {{EX:search}} access to the search base's {{entry}} attribute.
   To add or delete an entry, the subject must have
 {{EX:write}} access to the entry's {{EX:entry}} attribute AND must  {{EX:write}} access to the entry's {{EX:entry}} attribute AND must
 have {{EX:write}} access to the entry's parent's {{EX:children}}  have {{EX:write}} access to the entry's parent's {{EX:children}}
 attribute.  To rename an entry, the subject must have {{EX:write}}  attribute.  To rename an entry, the subject must have {{EX:write}}
Line 552  attribute name and also using a value se Line 554  attribute name and also using a value se
 There are two special {{pseudo}} attributes {{EX:entry}} and  There are two special {{pseudo}} attributes {{EX:entry}} and
 {{EX:children}}.  To read (and hence return) a target entry, the  {{EX:children}}.  To read (and hence return) a target entry, the
 subject must have {{EX:read}} access to the target's {{entry}}  subject must have {{EX:read}} access to the target's {{entry}}
 attribute.  To add or delete an entry, the subject must have  attribute.  To perform a search, the subject must have
   {{EX:search}} access to the search base's {{entry}} attribute.
   To add or delete an entry, the subject must have
 {{EX:write}} access to the entry's {{EX:entry}} attribute AND must  {{EX:write}} access to the entry's {{EX:entry}} attribute AND must
 have {{EX:write}} access to the entry's parent's {{EX:children}}  have {{EX:write}} access to the entry's parent's {{EX:children}}
 attribute.  To rename an entry, the subject must have {{EX:write}}  attribute.  To rename an entry, the subject must have {{EX:write}}

Removed from v.1.3  
changed lines
  Added in v.1.4


______________
© Copyright 1998-2020, OpenLDAP Foundation, info@OpenLDAP.org